CVSS: 8.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-22152 – WordPress Product Import Export for WooCommerce Plugin <= 2.3.7 is vulnerable to Arbitrary File Upload
https://notcve.org/view.php?id=CVE-2024-22152
16 Jan 2024 — Unrestricted Upload of File with Dangerous Type vulnerability in WebToffee Product Import Export for WooCommerce.This issue affects Product Import Export for WooCommerce: from n/a through 2.3.7. Carga sin restricciones de archivos con vulnerabilidad de tipo peligroso en WebToffee Product Import Export para WooCommerce. Este problema afecta a Product Import Export para WooCommerce: desde n/a hasta 2.3.7. The Product Import Export for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads du... • https://patchstack.com/database/vulnerability/product-import-export-for-woo/wordpress-product-import-export-for-woocommerce-plugin-2-3-7-arbitrary-file-upload-vulnerability?_s_id=cve • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-46802 – WordPress Product Reviews Import Export for WooCommerce Plugin <= 1.4.8 is vulnerable to CSV Injection
https://notcve.org/view.php?id=CVE-2022-46802
09 Dec 2022 — Improper Neutralization of Formula Elements in a CSV File vulnerability in WebToffee Product Reviews Import Export for WooCommerce.This issue affects Product Reviews Import Export for WooCommerce: from n/a through 1.4.8. Neutralización inadecuada de elementos de fórmula en una vulnerabilidad de CSV File en WebToffee Product Reviews Import Export para WooCommerce. Este problema afecta a Product Reviews Import Export para WooCommerce: desde n/a hasta 1.4.8. The Product Reviews Import Export for WooCommerce pl... • https://patchstack.com/database/vulnerability/product-reviews-import-export-for-woocommerce/wordpress-product-reviews-import-export-for-woocommerce-plugin-1-4-8-unauth-csv-injection-vulnerability?_s_id=cve • CWE-1236: Improper Neutralization of Formula Elements in a CSV File •